[krbdev.mit.edu #7845] git commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Wed Jan 22 22:38:02 EST 2014
Fix krb5_copy_context
krb5_copy_context has been broken since 1.8 (it broke in r22456)
because k5_copy_etypes crashes on null enctype lists. Subsequent
additions to the context structure were not reflected in
krb5_copy_context, creating double-free bugs. Make k5_copy_etypes
handle null input and account for all new fields in krb5_copy_context.
Reported by Arran Cudbard-Bell.
(back ported from commit c452644d91d57d8b05ef396a029e34d0c7a48920)
https://github.com/krb5/krb5/commit/5fda425bf4e08fb15b2e77d4dd200f41da0e1905
Author: Tom Yu <tlyu at mit.edu>
Commit: 5fda425bf4e08fb15b2e77d4dd200f41da0e1905
Branch: krb5-1.10
src/lib/krb5/krb/copy_ctx.c | 12 ++++++++++++
src/lib/krb5/krb/etype_list.c | 2 ++
2 files changed, 14 insertions(+), 0 deletions(-)
More information about the krb5-bugs
mailing list